Search Results (19 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2026-58643 1 Microsoft 1 Windows Admin Center 2026-07-16 6.1 Medium
Improper neutralization of input during web page generation ('cross-site scripting') in Windows Admin Center allows an unauthorized attacker to perform spoofing over a network.
CVE-2026-56185 1 Microsoft 1 Windows Admin Center 2026-07-15 6.5 Medium
Improper authentication in Windows Admin Center allows an authorized attacker to disclose information over a network.
CVE-2026-56169 1 Microsoft 1 Windows Admin Center 2026-07-15 8.1 High
Improper authentication in Windows Admin Center allows an authorized attacker to elevate privileges over a network.
CVE-2026-57107 1 Microsoft 1 Windows Admin Center 2026-07-15 7.8 High
Improper authentication in Windows Admin Center allows an authorized attacker to elevate privileges locally.
CVE-2026-56196 1 Microsoft 1 Windows Admin Center 2026-07-14 8.8 High
Relative path traversal in Windows Admin Center allows an authorized attacker to execute code over a network.
CVE-2026-58631 1 Microsoft 1 Windows Admin Center 2026-07-14 7.8 High
Improper authorization in Windows Admin Center allows an authorized attacker to execute code locally.
CVE-2026-56197 1 Microsoft 1 Windows Admin Center 2026-07-14 8.8 High
Improper neutralization of special elements used in a command ('command injection') in Windows Admin Center allows an authorized attacker to execute code over a network.
CVE-2026-42834 1 Microsoft 2 Azure Portal Windows Admin Center, Windows Admin Center 2026-06-01 7.8 High
Improper access control in Windows Admin Center allows an authorized attacker to elevate privileges over a network.
CVE-2026-41086 1 Microsoft 2 Azure Portal Windows Admin Center, Windows Admin Center 2026-05-15 8.8 High
Improper access control in Windows Admin Center allows an authorized attacker to elevate privileges over a network.
CVE-2026-35438 1 Microsoft 1 Windows Admin Center 2026-05-13 8.3 High
Missing authorization in Windows Admin Center allows an authorized attacker to elevate privileges over a network.
CVE-2026-32196 1 Microsoft 1 Windows Admin Center 2026-04-24 6.1 Medium
Improper neutralization of input during web page generation ('cross-site scripting') in Windows Admin Center allows an unauthorized attacker to perform spoofing over a network.
CVE-2025-64669 1 Microsoft 1 Windows Admin Center 2026-04-20 7.8 High
Improper access control in Windows Admin Center allows an authorized attacker to elevate privileges locally.
CVE-2026-20965 1 Microsoft 2 Azure Portal Windows Admin Center, Windows Admin Center 2026-04-16 7.5 High
Improper verification of cryptographic signature in Windows Admin Center allows an authorized attacker to elevate privileges locally.
CVE-2026-26119 1 Microsoft 1 Windows Admin Center 2026-04-15 8.8 High
Improper authentication in Windows Admin Center allows an authorized attacker to elevate privileges over a network.
CVE-2026-23660 1 Microsoft 3 Azure Portal Windows Admin Center, Windows Admin Center, Windows Admin Center In Azure Portal 2026-04-14 7.8 High
Improper access control in Azure Portal Windows Admin Center allows an authorized attacker to elevate privileges locally.
CVE-2025-29819 1 Microsoft 2 Azure Portal Windows Admin Center, Windows Admin Center 2026-02-13 6.2 Medium
External control of file name or path in Azure Portal Windows Admin Center allows an unauthorized attacker to disclose information locally.
CVE-2023-29347 1 Microsoft 1 Windows Admin Center 2025-01-01 8.7 High
Windows Admin Center Spoofing Vulnerability
CVE-2021-27066 1 Microsoft 1 Windows Admin Center 2024-11-21 4.3 Medium
Windows Admin Center Security Feature Bypass Vulnerability
CVE-2019-0813 1 Microsoft 1 Windows Admin Center 2024-11-21 N/A
An elevation of privilege vulnerability exists when Windows Admin Center improperly impersonates operations in certain situations, aka 'Windows Admin Center Elevation of Privilege Vulnerability'.